From 801b9b2a25dbe7ed278ebbc795f3f16ee0f339eb Mon Sep 17 00:00:00 2001
From: Tom Carroll <incentivedesign@gmail.com>
Date: Thu, 23 Apr 2020 23:15:59 -0700
Subject: [PATCH] Stub openssl challenge_response functions.

Signed-off-by: Tom Carroll <incentivedesign@gmail.com>
---
 openssl.c | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/openssl.c b/openssl.c
index b15f2f6f..f028f89e 100644
--- a/openssl.c
+++ b/openssl.c
@@ -2139,3 +2139,20 @@ void destroy_eap_ttls(struct openconnect_info *vpninfo, void *ttls)
 	/* Leave the BIO_METH for now. It may get reused and we don't want to
 	 * have to call BIO_get_new_index() more times than is necessary */
 }
+
+int cert_auth_challenge_response(struct openconnect_info *vpninfo,
+	int cert_rq, const char *challenge, char **identity,
+	struct challenge_response *response)
+{
+	/* hush not used warnings */
+	(void) cert_rq;
+	(void) challenge;
+	(void) identity;
+	(void) response;
+
+	vpn_progress(vpninfo, PRG_ERR,
+		_("Multiple certificate-based authentication"
+		    " is not implemented for OpenSSL\n"));
+
+	return -ENOSYS;
+}
-- 
2.50.1